Senior Security Engineer (GRC Automation)

TL;DR

Senior Security Engineer (GRC Automation): Designing and implementing automation, dashboards, and integrations for Governance, Risk, and Compliance operations with an accent on scaling security and privacy commitments. Focus on operationalizing GRC platforms, building AI-assisted workflows for evidence collection, and managing end-to-end compliance projects.

Location: Remote (Must be based in the United States or Canada)

Salary: $153,000 – $214,000 USD / $144,000 – $202,000 CAD

Company

hirify.global is a leading cybersecurity company providing identity and access management solutions for over 180,000 businesses worldwide.

What you will do

• Lead the implementation and integration of the GRC platform (Drata) across key systems and workflows.
• Build automated workflows for control testing, evidence collection, and audit readiness.
• Design and deploy AI-assisted compliance workflows, including agentic evidence collection and LLM-powered vendor reviews.
• Develop integrations between the GRC platform and systems of record such as IAM, asset inventories, and ticketing systems.
• Design dashboards and reporting to track control health, trust signals, and audit performance.
• Own the roadmap for internal assurance infrastructure and make strategic build vs. buy decisions.

Requirements

• 5+ years of experience in security engineering, DevSecOps, solutions engineering, or GRC automation.
• Proven experience implementing and integrating GRC platforms (e.g., Drata, Vanta, Tines, JupiterOne).
• Strong scripting and integration skills using Python, JavaScript, APIs, and webhooks.
• Familiarity with compliance frameworks such as SOC 2, ISO 27001, or NIST 800-53.
• Experience building AI-assisted workflows using LLMs or agentic tools.
• Must be based in the United States or Canada.

Nice to have

• Hands-on experience with event-driven automation platforms like Tines.
• Expertise in building evidence pipelines or GRC dashboards in Looker or Metabase.
• Strong understanding of cloud-native security architecture (e.g., AWS IAM, encryption, logging).
• Familiarity with EU AI Act, NIST AI RMF, or emerging AI governance frameworks.
• CISA or CISSP certification.

Culture & Benefits

• Remote-first work environment with a requirement for occasional travel for team offsites and events.
• Comprehensive health, dental, and retirement matching programs (401k/RRSP).
• Generous PTO policy and maternity/parental leave top-up programs.
• RSU program for most employees and a free hirify.global account.
• A high-performance, fast-paced culture that values transparency, honesty, and iterative experimentation.